Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2005-0359

Опубликовано: 23 авг. 2005
Источник: nvd
CVSS2: 6.4
EPSS Средний

Описание

The Legato PortMapper in EMC Legato NetWorker, Sun Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 7.0 through 7.2 does not restrict access to the pmap_set and pmap_unset commands, which allows remote attackers to (1) cause a denial of service by using pmap_unset to un-register a NetWorker service, or (2) obtain sensitive information from NetWorker services by using pmap_set to register a new service.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:emc:legato_networker:4.2.2:*:*:*:*:*:*:*
cpe:2.3:a:emc:legato_networker:6.0:*:*:*:*:*:*:*
cpe:2.3:a:emc:legato_networker:6.1:*:*:*:*:*:*:*
cpe:2.3:a:emc:legato_networker:7.2:*:*:*:*:*:*:*
cpe:2.3:a:emc:legato_networker:7.13:*:*:*:*:*:*:*
cpe:2.3:a:sun:solstice_backup:6.0:*:*:*:*:*:*:*
cpe:2.3:a:sun:solstice_backup:6.1:*:*:*:*:*:*:*
cpe:2.3:a:sun:storedge_enterprise_backup_software:7.0:*:*:*:*:*:*:*
cpe:2.3:a:sun:storedge_enterprise_backup_software:7.1:*:*:*:*:*:*:*
cpe:2.3:a:sun:storedge_enterprise_backup_software:7.2:*:*:*:*:*:*:*

EPSS

Процентиль: 93%
0.10244
Средний

6.4 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

github логотип

GHSA-55ww-f6rg-mqhm

github
почти 4 года назад

The Legato PortMapper in EMC Legato NetWorker, Sun Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 7.0 through 7.2 does not restrict access to the pmap_set and pmap_unset commands, which allows remote attackers to (1) cause a denial of service by using pmap_unset to un-register a NetWorker service, or (2) obtain sensitive information from NetWorker services by using pmap_set to register a new service.

EPSS

Процентиль: 93%
0.10244
Средний

6.4 Medium

CVSS2

Дефекты

NVD-CWE-Other